Budapest Post

Cum Deo pro Patria et Libertate
Budapest, Europe and world news

French submarine maker’s Australian job: On the hunt for a corporate leaker

French submarine maker’s Australian job: On the hunt for a corporate leaker

An Australian senator and a journalist investigated on behalf of France’s Naval Group.

When leaked details of a corporate conference call threatened a €56 billion submarine deal with the government of Australia, the French defense giant Naval Group turned to Eric Leandri, an entrepreneur with a reputation as Europe’s digital privacy champion.

Leandri made his name as chief executive of the search engine Qwant. But he was now head of a new company, Altrnativ, a cyber surveillance firm compiling dossiers on private individuals for some of France’s biggest brands and working on cyberweapon contracts with authoritarian African regimes such as Chad and Cameroon. Naval Group asked Altrnativ to investigate participants on the call, as well as five others, including an Australian senator, an Australian journalist and the Australian CEO of a rival firm, according to documents seen by POLITICO.

The project’s goal: to discover how the submarine manufacturer's internal discussions were leaked to the Australian press, and to find out “who is loyal and who isn't,” according to the notes of a June 9, 2021, meeting between an Altrnativ employee and Naval Group's head of security.

The result: No firm conclusion on the source of the leak but a 40-page report listing the targets’ phone numbers, social media connections and in some cases personal information.

Just a few months later, the submarine deal was dead, France’s relations with Australia and America had collapsed in acrimony and China’s Communist leaders were frothing at the mouth over a new Indo-Pacific alliance known as AUKUS.

Informed for the first time by POLITICO that he had been the subject of a secret investigation, Rex Patrick, the Australian senator, said he found the practice “outrageous.”

“I don’t think anyone from France would appreciate an Australian state-owned company investigating a French senator because he or she was asking hard questions in the French Parliament on the spending of French taxpayers’ money,” he said. “They would rightly say such snooping was ‘choquant’, ‘outrageant’ and ‘scandaleux.’”

“Feel free to fix my bad French,” he added.

Details of Naval Group’s Australian job were among thousands of internal Altrnativ documents seen by POLITICO. They shine a light on the rapidly growing cyber surveillance industry, in which companies trawl the internet and other publicly available data sources to compile dossiers on employees, rivals or critics.

The practice is commonly used to perform due diligence checks on counterparties or potential hires, but it can also be deployed against outside critics or internal dissenters. In either case, it risks violating the European Union’s privacy laws known as the General Data Protection Regulation or GDPR.



“Following a leak of confidential and internal information from Naval Group in the Australian media, we engaged [Altrnativ] to use open sources to understand the context of this damaging leak,” a spokeswoman for Naval Group said in a statement to POLITICO. The company declined to comment further.


Sprung a leak


The Naval Group leak took place in the spring of 2021, months before Australia torpedoed the submarine deal, sparking an international diplomatic crisis. But the first cracks in the agreement were already beginning to show.

Worried about cost overruns and delays in delivery, the Australian government had refused to sign a new tranche of the deal. It was also secretly negotiating an anti-China alliance with the U.S. and U.K. that would become known as AUKUS and involved buying nuclear-powered submarines from the U.S. instead.

In the wake of the debacle, France temporarily recalled its ambassador to the U.S. for the first time ever. Paris also recalled its ambassador to Australia.

Still hoping to head off catastrophe, Naval Group gathered 30 people on May 5 on a call to discuss the status of the agreement. Details of the discussion were leaked to the Australian Financial Review, a business newspaper.

An article on May 14 by the political journalist Andrew Tillett described a company worried about the deal’s future. During the call, Fabrice Leduc, a Naval Group executive, said the company would freeze hiring and spend only what it knew would be reimbursed by Canberra.

Tillett reported how staffers worried aloud about being able to keep on schedule. One employee complained that accommodating the Australians’ demands was a “nightmare,” given the upcoming summer holidays in France.

Leandri had reached out to Naval Group a couple of months before the leak, with a 15-page pitch proposing a range of services, from “threat evaluation” to “identifying top haters.”

On July 1, the two companies struck an agreement intended to identify the leaker. According to a purchase order signed by Naval Group's deputy head of security Arnaud de Pellegars on July 1, Altrnativ was paid €9,600 to “map” the people the submarine manufacturer believed could be involved in the leak.

The documents suggest Naval Group passed on its employees’ names and phone numbers, and in one case also shared that one of its employees was in a relationship with a woman who had left Naval Group for a rival company.

The targets included people on the call, but also the woman who had left the company; Patrick, the Australian senator and a vocal critic of the submarine deal; and Tillett, the journalist. (Tillett declined an interview request from POLITICO. “As a journalist, I don't believe in commenting on sources,” he said. "Never have, never will.”)

Also targeted were Jim McDowell, CEO of the Australian defense firm Nova Systems, a competitor, and Brent Clark, chief executive of the Australian Industry and Defence Network, which represents local small and medium defense contractors.

In an interview, Leandri declined to comment on the job but denied he was given the employee's numbers by Naval Group. Companies “never share information with us,” he said.


Inconclusive


Altrnativ’s 40-page report, delivered after more than a month and speckled with spelling mistakes, did not identify the leaker. 

It identified five people Altrnativ deemed to be a “risk” for Naval Group, marking their profiles with a yellow triangle warning sign. One had worked in the U.S. and Japan. One had been employed by the state-owned Qatar Foundation. One was a woman who left the company in May.

One woman was listed as a risk because of her “visibility on social networks” and the “abundance of information that could be potentially collected.” These, the report concluded, put her at risk of foreign espionage.

The report excluded the possibility that an employee based in France contacted the journalist directly and presented a series of other possible scenarios, sometimes in the form of questions.

Could the woman who left the company in May be trying to curry favor with her new employer? Could another employer who had once worked for Qatar Foundation be trying to destabilize Naval Group on behalf of the petrostate?

While the report was light on conclusions, it was packed with details about the personal lives of its targets.

For each person, it listed phone numbers, social media profiles, job titles, marital status and number of children, when available. For some, it went deeper.

In the section regarding the woman who had left the company, it listed her hobbies, her Pinterest page and the name of her son, and concluded: “Her inclination towards yoga, art and jewelry-making seems to distance her from the main industrial and geopolitical issues of Australia.”

Altrnativ provided Naval Group with a phone number for McDowell, the CEO of Nova Group, and a link to his Amazon Wishlist. It included Patrick’s resume and mapped out the Australian senator’s social media accounts, highlighting his connections with Tillett, the journalist, and including screenshots of his Tweets.


Privacy violation


Experts who spoke to POLITICO said it was unclear whether the leak investigation violated Australia’s regulations on the use of personal data.

“On the face of it, it has the potential to be a breach of privacy law,” said David Vaile, chair of the Australian Privacy Foundation. But the country’s rules carve out an exemption for “employee records,” a term that has been open to legal interpretation.

Patrick noted that not all the companies’ targets worked for Naval Group.

“I do not think it is the business of a French company to conduct an inquiry into any Australian citizen that was not employed by the company,” Patrick said. “Naval Group were in a contract with the Australian government and could have requested assistance from Australian authorities if they thought there were Australian citizens involved in any leak.”

Several experts said Naval Group and Altrnativ’s activities may have violated Europe’s GDPR privacy rules, which don’t include exceptions for employee data, especially if the targets were not informed about the investigation. Personal data, including political views, religious beliefs and racial or ethnic origins is considered “sensitive,” under the GDPR, said Eric Delisle, head of the employment, solidarity, sport and housing department at the CNIL, the French data protection authority. “The GDPR lays down a principle of prohibition of use except for very specific exceptions.”

The GDPR can be enforced for Australian targets as well, since their data was collected and processed by a French company, Altrnativ. “If a company is based in Europe or targets are individuals located in Europe, the GDPR applies," Delisle said.

The GDPR would have applied even if the data was public, according to Valérie Aumage, a French lawyer and head of the department dealing with digital law and the protection of personal data at PWC Société d’Avocats. “Wherever the data is coming from … the person has to be informed about what’s going to be done with it,” she said. Notification can be delayed, but that would have to be justified by “legitimate interests,” Aumage added. Data protection requirements do not end once the person is informed. “The processing has to be justified, including citing a legal basis for the processing and its necessity,” said Ravi Naik, legal director of the AWO agency, which specializes in data protection cases. “Necessity involves weighing the purpose of the investigation against the impact of the individual’s freedoms and rights,” he added.

Contacted by POLITICO, Philip Benton, a former contractor for Naval, said he was not aware his data had been used by Altrnativ. He said he had been interviewed by human resources and Naval Group's security but had not been told about the results of any investigations. 

“We were not made aware of whether the source of the leak was identified,” he said. “It remains a mystery to me.” 

Naval Group did not respond to a request for comment specifically on the allegations the company broke GDPR. Asked if Altrnativ broke the GDPR, Leandri did not reply.

AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
Newsletter

Related Articles

0:00
0:00
Close
British Labour Government Utilizes Counter-Terrorism Tools for Social Media Monitoring Against Legitimate Critics
OpenAI Launches GPT‑5, Its Most Advanced AI Model Yet
Brazilian President Lula says he’ll contact the leaders of BRICS states to propose a unified response to U.S. tariffs
US envoy Steve Witkoff arrived in Moscow to seek a breakthrough in the Ukraine war ahead of President Trump’s peace deadline
WhatsApp Deletes 6.8 Million Scam Accounts Amid Rising Global Fraud
Britain's Online Safety Law Sparks Outcry Over Privacy, Free Speech, and Mass Surveillance
Nine people have been hospitalized and dozens of salmonella cases have been reported after an outbreak of infections linked to certain brands of pistachios and pistachio-containing products, according to the Public Health Agency of Canada
Karol Nawrocki Inaugurated as Poland’s President, Setting Stage for Clash with Tusk Government
US Charges Two Chinese Nationals for Illegal Nvidia AI Chip Exports
Texas Residents Face Water Restrictions While AI Data Centers Consume Millions of Gallons
U.S. Tariff Policy Triggers Market Volatility Amid Growing Global Trade Tensions
Tariffs, AI, and the Shifting U.S. Macro Landscape: Navigating a New Economic Regime
German Finance Minister Criticizes Trump’s Attacks on Institutions
India Rejects U.S. Tariff Threat, Defends Russian Oil Purchases
United States Establishes Strategic Bitcoin Reserve and Digital Asset Stockpile
Thousands of Private ChatGPT Conversations Accidentally Indexed by Google
China Tightens Mineral Controls, Curtailing Critical Inputs for Western Defence Contractors
OpenAI’s Bold Bet: Teaching AI to Think, Not Just Chat
U.S. Tariffs Surge to Highest Levels in Nearly a Century Under Second Trump Term
Ong Beng Seng Pleads Guilty in Corruption Case Linked to Former Singapore Transport Minister
BP’s Largest Oil and Gas Find in 25 Years Uncovered Offshore Brazil
Italy Fines Shein One Million Euros for Misleading Sustainability Claims
JPMorgan and Coinbase Unveil Partnership to Let Chase Cardholders Buy Crypto Directly
Declassified Annex Links Soros‑Affiliated Officials and Clinton Campaign to ‘Russiagate’ Narrative
UK's Online Safety Law: A Front for Censorship
Parents Abandon Child at Barcelona Airport Over Passport Issue
Bus Driver Discovers Toddler Hidden in Suitcase in New Zealand
Switzerland Celebrates 734 Years of Independence Amid Global Changes
China Enforces Comprehensive Ban on Cryptocurrency Activities
Grok 4 Video plus Voice, can identify wildlife!
George Soros tells the World Economic Forum: "President Trump is a con man and the ultimate narcissist, who wants the world to revolve around him."
Hamas are STARVING the hostages.
The UK Does Not Have a ‘Far-Right’ Problem
British Tourist Dies Following Hair Transplant in Turkey, Police Investigate
WhatsApp Users Targeted in New Scam Involving Account Takeovers
JD Vance Warns Europe Faces “Civilizational Suicide” Over Open Borders and Speech Limits
Germany Enters Fiscal Crisis as Cabinet Approves €174 Billion in New Debt
Trump Administration Finalizes Broad Tariff Increases on Global Trade Partners
JD.com Launches €2.2 Billion Bid for German Electronics Retailer Ceconomy
Azerbaijan Proceeds with Plan to Legalise Casinos on Artificial Islands
IMF Upgrades Global Growth Forecast as Weaker Dollar Supports Outlook
House Republicans Move to Defund OECD Over Global Tax Dispute
France Opens Criminal Investigation into X Over Algorithm Manipulation Allegations
Trump Steamrolls EU in Landmark Trade Win: US–EU Trade Deal Imposes 15% Tariff on European Imports
ChatGPT CEO Sam Altman says people share personal info with ChatGPT but don’t know chats can be used as court evidence in legal cases.
Intel Reports Revenue Beats but Sees 81% Rise in Losses
Politics is a good business: Barack Obama’s Reported Net Worth Growth, 1990–2025
UN's Top Court Declares Environmental Protection a Legal Obligation Under International Law
"Crazy Thing": OpenAI's Sam Altman Warns Of AI Voice Fraud Crisis In Banking
The Podcaster Who Accidentally Revealed He Earns Over $10 Million a Year
×